Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF89DE40F5C211EC9CFF89A1F1222468.roa
File: BF89DE40F5C211EC9CFF89A1F1222468.roa (raw, json)
Hash identifier: GbvvSUN6XJVtjq7615hueNbH572vrAA+S9WbO+k2A3k=
Subject key identifier: F7:DB:C6:68:DA:0C:D0:1F:93:51:AE:E0:A9:01:67:5D:09:E5:7D:9C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 16FD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF89DE40F5C211EC9CFF89A1F1222468.roa
Signing time: Mon 27 Jun 2022 02:42:13 +0000
ROA not before: Mon 27 Jun 2022 02:42:08 +0000
ROA not after: Sat 01 Oct 2022 02:42:08 +0000
asID: 212756
IP address blocks: 154.208.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5885 (0x16fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 27 02:42:08 2022 GMT
Not After : Oct 1 02:42:08 2022 GMT
Subject: CN=62b91905-ea95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:04:1d:17:c5:17:db:ad:da:7c:87:a6:0d:b5:
17:d6:b3:66:4f:6e:e2:75:7d:c4:67:ec:31:55:64:
5b:9e:47:6f:18:cb:c1:f3:54:c7:84:6d:d3:bf:58:
f3:50:3f:3f:97:93:1d:a9:6f:98:43:1f:d7:33:74:
31:82:bd:63:09:0b:64:71:b9:50:e7:a0:a3:5c:d3:
31:eb:39:b2:bc:e8:71:e1:3e:5f:61:2a:ac:77:8f:
59:79:ab:5e:ed:80:f9:7f:d1:b4:3a:38:cb:57:43:
bc:76:75:ce:90:14:97:ac:18:b3:94:6f:db:08:cb:
e5:45:a5:04:1a:5e:c4:5c:fa:c2:26:a7:82:1d:f9:
2a:ca:1e:9b:b7:b4:7f:6a:e0:fa:a1:2f:69:7b:cc:
c2:46:76:2a:8a:db:e8:e7:c9:e7:7d:d1:e7:2f:19:
3b:ae:e4:c5:2b:bd:7b:9a:3e:93:06:76:14:04:34:
70:21:4b:41:31:c6:5a:18:2d:94:3a:7e:03:8c:fa:
0c:ba:d2:0c:9b:8c:b7:da:86:4e:c4:13:cf:ab:8a:
4c:9d:ed:d3:3a:18:e6:65:33:45:06:f0:74:cd:43:
08:4f:5e:ad:13:2c:d4:b7:01:31:55:c0:79:e8:f7:
3a:75:c5:bc:5d:f7:d1:6c:62:c6:e9:19:fa:35:62:
1f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:DB:C6:68:DA:0C:D0:1F:93:51:AE:E0:A9:01:67:5D:09:E5:7D:9C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF89DE40F5C211EC9CFF89A1F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.131.0/24
Signature Algorithm: sha256WithRSAEncryption
20:03:af:d9:ac:de:d1:60:b2:0b:bc:fa:76:52:72:35:b3:67:
3a:4e:e1:68:38:3d:13:81:cc:be:30:a3:78:7e:d5:b6:09:b9:
70:3b:08:d0:ae:5c:3e:17:31:da:00:11:9c:22:22:1d:36:42:
b5:26:2e:8d:42:55:5b:a5:4c:dd:16:3c:b4:28:fb:06:04:42:
76:b0:b4:09:e4:ff:d1:77:80:35:0f:4a:40:5a:16:86:d3:ff:
51:bc:1c:79:a2:7e:c1:8d:57:dd:7d:05:60:46:f5:a4:0f:bf:
75:1d:be:4e:27:8c:2f:b6:2a:5e:21:0f:73:4e:c6:d9:01:1f:
ce:56:61:aa:f4:f3:89:57:ec:dd:7c:49:a9:a2:00:41:04:17:
95:d4:dc:cb:c0:90:97:c2:2e:64:12:70:c8:2d:ab:e2:c9:0b:
64:46:a3:1f:05:d9:02:cb:08:25:bf:5f:8c:a5:fe:60:72:35:
b3:30:84:44:f4:bd:12:07:0e:3b:51:62:a3:6e:8b:76:0d:c6:
25:02:70:28:bc:0e:8c:32:21:a2:73:4c:86:70:92:cf:75:5b:
e1:8e:cb:3d:d3:98:fb:51:cd:69:41:6e:a7:e0:36:d0:d5:08:
4c:6e:d2:b9:03:5e:b9:74:31:bc:c6:50:39:0f:99:01:09:00:
57:a2:9c:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:11 2023 by rpki-client on console-ams.rpki-client.org